Security Advisory

CVE-2021-23848

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-06-09 14:18:46

Last updated 2024-09-16 16:27:51

Assigner bosch

State PUBLISHED

Description

An error in the URL handler Bosch IP cameras may lead to a reflected cross site scripting (XSS) in the web-based interface. An attacker with knowledge of the camera address can send a crafted link to a user, which will execute javascript code in the context of the user.

← Browse all CVEs View on cve.org ↗